1
Candidate: CVE-2016-5108
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5108
6
Buffer overflow in the DecodeAdpcmImaQT function in modules/codec/adpcm.c
7
in VideoLAN VLC media player before 2.2.4 allows remote attackers to cause
8
a denial of service (crash) or possibly execute arbitrary code via a
9
crafted QuickTime IMA file.
13
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=825728
19
upstream: https://git.videolan.org/?p=vlc.git;a=commit;h=458ed62bbeb9d1bddf7b8df104e14936408a3db9
20
upstream_vlc: released (2.2.3-2)
21
precise_vlc: ignored (reached end-of-life)
22
precise/esm_vlc: DNE (precise was needs-triage)
23
trusty_vlc: released (2.1.6-0ubuntu14.04.3)
24
vivid/stable-phone-overlay_vlc: DNE
25
vivid/ubuntu-core_vlc: DNE
26
wily_vlc: ignored (reached end-of-life)
27
xenial_vlc: released (2.2.2-5ubuntu0.16.04.3)
28
yakkety_vlc: ignored (reached end-of-life)
29
zesty_vlc: not-affected (2.2.4-14ubuntu2.1)
30
devel_vlc: not-affected